Compromised Wordpress site Issues

bmango

• January 31, 2016 14:32

Hi, I have a Wordpress site that is repeatedly being hacked. Unauthorised files are being uploaded to the site (not via ftp). I am continually restoring the site from backups every time this happens (about once every two weeks). I keep the website up to date (wordpress and plugins) but there must be a flaw somewhere which they are using to get in each time. The website is on a virtual server and I have root access. I have very little server admin experience and specialise in website building not servers. Can anyone give me any advice on what settings I could change to help prevent the hacking, or is there anyway I can identify how the hackers are able to get into the site from the server logs? Thanks in advance

• 

  keat63

  • February 01, 2016 07:52

  Host Access Control might help, along with CSF.

  0
• 

  Infopro

  • February 01, 2016 09:15

  You should be asking about this over at the wordpress support site. Sounds to me like at least of your "up to date" plugins, probably isn't.

  0
• 

  bmango

  • February 01, 2016 09:21

  Many thanks keat63 and infopro for your replies. I will look into the Host Access Control and CSF. I have done quite a lot of research on the Wordpress forums, but it probably is a good idea to create a post about it there as well. Thanks again.

  0

Please sign in to leave a comment.